similar to: [Bug 1041] nftables in a container affects the host

https://bugzilla.netfilter.org/show_bug.cgi?id=998 Phil Sutter <phil at nwl.cc> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |phil at nwl.cc Status|NEW |RESOLVED Resolution|---

https://bugzilla.netfilter.org/show_bug.cgi?id=1041 --- Comment #2 from Pablo Neira Ayuso <pablo at netfilter.org> --- For just the record: 4.1 needs this workaround though, we have to request inclusion into -stable. commit fdab6a4cbd8933092155449ca7253eba973ada14 Author: Eric W. Biederman <ebiederm at xmission.com> Date: Fri Jun 19 10:41:21 2015 -0500 netfilter: nftables: Do

https://bugzilla.netfilter.org/show_bug.cgi?id=1435 Phil Sutter <phil at nwl.cc> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED CC| |phil at nwl.cc Resolution|REMIND

https://bugzilla.netfilter.org/show_bug.cgi?id=1501 Phil Sutter <phil at nwl.cc> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |phil at nwl.cc --- Comment #7 from Phil Sutter <phil at nwl.cc> --- Hi, (In reply to marco.drummer from comment

https://bugzilla.netfilter.org/show_bug.cgi?id=1099 Bug ID: 1099 Summary: Minor typo in wiki.nftables.org Product: nftables Version: unspecified Hardware: x86_64 OS: All Status: NEW Severity: trivial Priority: P5 Component: nft Assignee: pablo at netfilter.org

https://bugzilla.netfilter.org/show_bug.cgi?id=1028 Phil Sutter <phil at nwl.cc> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |phil at nwl.cc --- Comment #2 from Phil Sutter <phil at nwl.cc> --- Reproducing this with a more recent version of

https://bugzilla.netfilter.org/show_bug.cgi?id=1501 --- Comment #9 from Phil Sutter <phil at nwl.cc> --- (In reply to marco.drummer from comment #8) > (In reply to Phil Sutter from comment #7) > > I am currently using iptables v1.8.7 (nf_tables) on Ubuntu 22.04.2 LTS > > Almost all of my rules are converted to nft to make use of the advantages > and simplifications in

Hi! The Netfilter project proudly presents: nftables 0.8.2 This release fixes ./configure --with-xtables that enables interaction between iptables-compat [1] and nft, and it also includes a bunch of documentation updates. This release introduces a new explicit option for interval sets, that enables auto-merge of adjacent/overlapping elements when adding them to the set, eg. table

https://bugzilla.netfilter.org/show_bug.cgi?id=1692 Bug ID: 1692 Summary: CentOS 7 kernel up to 3.10.0-1160.92.1.el7.x86_64 - nftables hangs the system on set flush Product: nftables Version: unspecified Hardware: x86_64 OS: other Status: NEW Severity: blocker Priority: P5

https://bugzilla.netfilter.org/show_bug.cgi?id=1210 Bug ID: 1210 Summary: nftables gets confused by user namespaces when meta skuid is used Product: nftables Version: unspecified Hardware: All OS: All Status: NEW Severity: critical Priority: P5 Component: nft

https://bugzilla.netfilter.org/show_bug.cgi?id=1744 Bug ID: 1744 Summary: Packet corruption occurs when using the nftables vlan pcp set command Product: nftables Version: 1.0.x Hardware: arm OS: All Status: NEW Severity: major Priority: P5 Component: kernel

Hi! The Netfilter project proudly presents: nftables 0.8.1 This release contains mostly incremental fixes and documentation updates, such as fixing up ./configure --with-mini-gmp for embedded setups that don't have libgmp. Deprecated syntax ================= This release deprecates the "flow table" syntax in favor of "meter" to address Netfilter's bugzilla

https://bugzilla.netfilter.org/show_bug.cgi?id=1028 Phil Sutter <phil at nwl.cc> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|NEW |RESOLVED --- Comment #3 from Phil Sutter <phil at nwl.cc>

https://bugzilla.netfilter.org/show_bug.cgi?id=1735 Bug ID: 1735 Summary: Adding nftables interval sets progressively gets slower and makes the nft CLI less responsive with each added set Product: nftables Version: 1.0.x Hardware: All OS: All Status: NEW Severity:

https://bugzilla.netfilter.org/show_bug.cgi?id=1216 Bug ID: 1216 Summary: Error messaging for "interval overlaps with previous one" misidentifies location Product: nftables Version: unspecified Hardware: All OS: All Status: NEW Severity: major Priority: P5

https://bugzilla.netfilter.org/show_bug.cgi?id=1086 Bug ID: 1086 Summary: Nftables matching packet header fields and unexpected '(': wrong wiki info or bug? Product: nftables Version: unspecified Hardware: x86_64 OS: Debian GNU/Linux Status: NEW Severity: minor

Hi! The Netfilter project proudly presents: nftables 0.9.5 This release contains fixes and new features available up to the Linux kernel 5.7 release. * Support for set counters: table ip x { set y { typeof ip saddr counter elements = { 192.168.10.35, 192.168.10.101, 192.168.10.135 } }

Hi! The Netfilter project proudly presents: nftables 0.9.7 This release contains fixes and new features available up to the Linux kernel 5.10-rc1 release. * Support for implicit chain, e.g. table inet x { chain y { type filter hook input priority 0; tcp dport 22 jump { ip saddr { 127.0.0.0/8, 172.23.0.0/16, 192.168.13.0/24 }

https://bugzilla.netfilter.org/show_bug.cgi?id=1777 Bug ID: 1777 Summary: Error: COMMAND_FAILED: 'python-nftables' failed Product: nftables Version: 1.0.x Hardware: arm OS: Debian GNU/Linux Status: NEW Severity: blocker Priority: P5 Component: kernel Assignee: pablo at

https://bugzilla.netfilter.org/show_bug.cgi?id=1757 Bug ID: 1757 Summary: Alpine 3.19: iptables: Bad rule (does a matching rule exist in that chain?). Product: iptables Version: 1.8.x Hardware: All OS: other Status: NEW Severity: normal Priority: P5 Component: